diff --git a/src/Umbraco.Web.UI.Client/src/common/directives/components/users/changepassword.directive.js b/src/Umbraco.Web.UI.Client/src/common/directives/components/users/changepassword.directive.js
new file mode 100644
index 0000000000..d1626e21a3
--- /dev/null
+++ b/src/Umbraco.Web.UI.Client/src/common/directives/components/users/changepassword.directive.js
@@ -0,0 +1,170 @@
+(function () {
+  'use strict';
+
+  function ChangePasswordController($scope) {
+
+    function resetModel(isNew) {
+      //the model config will contain an object, if it does not we'll create defaults
+      //NOTE: We will not support doing the password regex on the client side because the regex on the server side
+      //based on the membership provider cannot always be ported to js from .net directly.        
+      /*
+      {
+          hasPassword: true/false,
+          requiresQuestionAnswer: true/false,
+          enableReset: true/false,
+          enablePasswordRetrieval: true/false,
+          minPasswordLength: 10
+      }
+      */
+
+      //set defaults if they are not available
+      if ($scope.config.disableToggle === undefined) {
+        $scope.config.disableToggle = false;
+      }
+      if ($scope.config.hasPassword === undefined) {
+        $scope.config.hasPassword = false;
+      }
+      if ($scope.config.enablePasswordRetrieval === undefined) {
+        $scope.config.enablePasswordRetrieval = true;
+      }
+      if ($scope.config.requiresQuestionAnswer === undefined) {
+        $scope.config.requiresQuestionAnswer = false;
+      }
+      if ($scope.config.enableReset === undefined) {
+        $scope.config.enableReset = true;
+      }
+      if ($scope.config.minPasswordLength === undefined) {
+        $scope.config.minPasswordLength = 0;
+      }
+
+      //set the model defaults
+      if (!angular.isObject($scope.passwordValues)) {
+        //if it's not an object then just create a new one
+        $scope.passwordValues = {
+          newPassword: null,
+          oldPassword: null,
+          reset: null,
+          answer: null
+        };
+      }
+      else {
+        //just reset the values
+
+        if (!isNew) {
+          //if it is new, then leave the generated pass displayed
+          $scope.passwordValues.newPassword = null;
+          $scope.passwordValues.oldPassword = null;
+        }
+        $scope.passwordValues.reset = null;
+        $scope.passwordValues.answer = null;
+      }
+
+      //the value to compare to match passwords
+      if (!isNew) {
+        $scope.confirm = "";
+      }
+      else if ($scope.passwordValues.newPassword && $scope.passwordValues.newPassword.length > 0) {
+        //if it is new and a new password has been set, then set the confirm password too
+        $scope.confirm = $scope.passwordValues.newPassword;
+      }
+
+    }
+
+    resetModel($scope.isNew);
+
+    //if there is no password saved for this entity , it must be new so we do not allow toggling of the change password, it is always there
+    //with validators turned on.
+    $scope.changing = $scope.config.disableToggle === true || !$scope.config.hasPassword;
+
+    //we're not currently changing so set the model to null
+    if (!$scope.changing) {
+      $scope.passwordValues = null;
+    }
+
+    $scope.doChange = function () {
+      resetModel();
+      $scope.changing = true;
+      //if there was a previously generated password displaying, clear it
+      $scope.passwordValues.generatedPassword = null;
+    };
+
+    $scope.cancelChange = function () {
+      $scope.changing = false;
+      //set model to null
+      $scope.passwordValues = null;
+    };
+
+    var unsubscribe = [];
+
+    //listen for the saved event, when that occurs we'll 
+    //change to changing = false;
+    unsubscribe.push($scope.$on("formSubmitted", function () {
+      if ($scope.config.disableToggle === false) {
+        $scope.changing = false;
+      }
+    }));
+    unsubscribe.push($scope.$on("formSubmitting", function () {
+      //if there was a previously generated password displaying, clear it
+      if ($scope.changing && $scope.passwordValues) {
+        $scope.passwordValues.generatedPassword = null;
+      }
+      else if (!$scope.changing) {
+        //we are not changing, so the model needs to be null
+        $scope.passwordValues = null;
+      }
+    }));
+
+    //when the scope is destroyed we need to unsubscribe
+    $scope.$on('$destroy', function () {
+      for (var u in unsubscribe) {
+        unsubscribe[u]();
+      }
+    });
+
+    $scope.showReset = function () {
+      return $scope.config.hasPassword && $scope.config.enableReset;
+    };
+
+    $scope.showOldPass = function () {
+      return $scope.config.hasPassword &&
+        !$scope.config.allowManuallyChangingPassword &&
+        !$scope.config.enablePasswordRetrieval && !$scope.passwordValues.reset;
+    };
+
+    $scope.showNewPass = function () {
+      return !$scope.passwordValues.reset;
+    };
+
+    $scope.showConfirmPass = function () {
+      return !$scope.passwordValues.reset;
+    };
+
+    $scope.showCancelBtn = function () {
+      return $scope.config.disableToggle !== true && $scope.config.hasPassword;
+    };
+
+  }
+
+  function ChangePasswordDirective() {
+
+    var directive = {
+      restrict: 'E',
+      replace: true,
+      templateUrl: 'views/components/users/change-password.html',
+      controller: 'Umbraco.Editors.Users.ChangePasswordDirectiveController',
+      scope: {
+        isNew: "=?",
+        passwordValues: "=",        
+        config: "="        
+      }
+    };
+
+    return directive;
+
+  }
+
+  angular.module('umbraco.directives').controller('Umbraco.Editors.Users.ChangePasswordDirectiveController', ChangePasswordController);
+  angular.module('umbraco.directives').directive('changePassword', ChangePasswordDirective);
+
+
+})();
\ No newline at end of file
diff --git a/src/Umbraco.Web.UI.Client/src/common/services/umbdataformatter.service.js b/src/Umbraco.Web.UI.Client/src/common/services/umbdataformatter.service.js
index 3b55753ee5..a935acb66e 100644
--- a/src/Umbraco.Web.UI.Client/src/common/services/umbdataformatter.service.js
+++ b/src/Umbraco.Web.UI.Client/src/common/services/umbdataformatter.service.js
@@ -81,7 +81,7 @@
       formatUserPostData: function (displayModel) {
 
         //create the save model from the display model
-        var saveModel = _.pick(displayModel, 'id', 'parentId', 'name', 'username', 'culture', 'email', 'startContentIds', 'startMediaIds', 'userGroups', 'message');
+        var saveModel = _.pick(displayModel, 'id', 'parentId', 'name', 'username', 'culture', 'email', 'startContentIds', 'startMediaIds', 'userGroups', 'message', 'changePassword');
 
         //make sure the userGroups are just a string array
         var currGroups = saveModel.userGroups;
diff --git a/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.controller.js b/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.controller.js
index f59292dcc8..5082543b9d 100644
--- a/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.controller.js
+++ b/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.controller.js
@@ -112,10 +112,8 @@ angular.module("umbraco")
 
         /* ---------- UPDATE PASSWORD ---------- */
 
-        //create the initial model for change password property editor
+        //create the initial model for change password
         $scope.changePasswordModel = {
-           alias: "_umb_password",
-           view: "changepassword",
            config: {},
            value: {}
         };
diff --git a/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.html b/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.html
index 31ff07aeb9..fad32bf9dd 100644
--- a/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.html
+++ b/src/Umbraco.Web.UI.Client/src/views/common/overlays/user/user.html
@@ -97,8 +97,10 @@
           ng-submit="changePassword()"
           novalidate
           val-form-manager>
-
-          <umb-editor model="changePasswordModel"></umb-editor>
+         
+         <change-password password-values="changePasswordModel.value"
+                          config="changePasswordModel.config">
+         </change-password>
 
            <umb-button
                type="button"
diff --git a/src/Umbraco.Web.UI.Client/src/views/components/users/change-password.html b/src/Umbraco.Web.UI.Client/src/views/components/users/change-password.html
new file mode 100644
index 0000000000..d0a42299ff
--- /dev/null
+++ b/src/Umbraco.Web.UI.Client/src/views/components/users/change-password.html
@@ -0,0 +1,62 @@
+<div>
+  <div class="alert alert-success text-center" ng-hide="!passwordValues.generatedPassword">
+    <small>Password has been reset to:</small>
+    <br/>
+    <strong>{{passwordValues.generatedPassword}}</strong>
+  </div>
+  <div ng-switch="changing">
+    <div ng-switch-when="false">
+      <a href="" ng-click="doChange()" class="btn btn-small">
+        <localize key="general_changePassword">Change password</localize>
+      </a>         
+    </div>
+    <div ng-switch-when="true">
+        
+      <umb-control-group alias="resetPassword" label="@user_resetPassword" ng-show="$parent.showReset()">
+        <input type="checkbox" ng-model="$parent.passwordValues.reset" 
+               id="Checkbox1" 
+               name="resetPassword"
+               val-server-field="resetPassword" no-dirty-check/>     
+        <span class="help-inline" val-msg-for="resetPassword" val-toggle-msg="valServerField"></span>            
+      </umb-control-group>
+
+      <!-- we need to show the old pass field when the provider cannot retrieve the password -->
+      <umb-control-group alias="oldPassword" label="@user_oldPassword" ng-show="$parent.showOldPass()">            
+        <input type="password" name="oldPassword" ng-model="$parent.passwordValues.oldPassword"
+               class="input-block-level umb-textstring textstring" 
+               ng-required="$parent.showOldPass()"
+               val-server-field="oldPassword" no-dirty-check
+               autocomplete="off"/>    
+        <span class="help-inline" val-msg-for="oldPassword" val-toggle-msg="required">Required</span>
+        <span class="help-inline" val-msg-for="oldPassword" val-toggle-msg="valServerField"></span>
+      </umb-control-group>
+
+      <umb-control-group alias="password" label="@user_newPassword" ng-show="$parent.showNewPass()">            
+        <input type="password" name="password" ng-model="$parent.passwordValues.newPassword"
+               class="input-block-level umb-textstring textstring"
+               ng-required="!$parent.passwordValues.reset"
+               val-server-field="password"
+               ng-minlength="{{$parent.config.minPasswordLength}}" no-dirty-check
+               autocomplete="off" />    
+        <span class="help-inline" val-msg-for="password" val-toggle-msg="required">Required</span>    
+        <span class="help-inline" val-msg-for="password" val-toggle-msg="minlength">Minimum {{$parent.config.minPasswordLength}} characters</span>    
+        <span class="help-inline" val-msg-for="password" val-toggle-msg="valServerField"></span>     
+      </umb-control-group>
+
+      <umb-control-group alias="confirmpassword" label="@user_confirmNewPassword" ng-show="$parent.showConfirmPass()">
+        <input type="password" name="confirmpassword" ng-model="$parent.confirm"
+               class="input-block-level umb-textstring textstring"
+               val-compare="password" no-dirty-check
+               autocomplete="off"/>
+
+        <span class="help-inline" val-msg-for="confirmpassword" val-toggle-msg="valCompare">
+          <localize key="user_passwordMismatch">The confirmed password doesn't match the new password!</localize>
+        </span>
+      </umb-control-group>
+
+      <a href="" ng-click="cancelChange()" ng-show="showCancelBtn()" class="btn btn-small">
+        <localize key="general_cancel">Cancel</localize>
+      </a> 
+    </div>      
+  </div>  
+</div>
diff --git a/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.controller.js b/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.controller.js
index 71d84a8412..239be5eebc 100644
--- a/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.controller.js
+++ b/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.controller.js
@@ -1,144 +1,65 @@
 angular.module("umbraco").controller("Umbraco.PropertyEditors.ChangePasswordController",
-    function ($scope, $routeParams) {
-        
-        function resetModel(isNew) {
-            //the model config will contain an object, if it does not we'll create defaults
-            //NOTE: We will not support doing the password regex on the client side because the regex on the server side
-            //based on the membership provider cannot always be ported to js from .net directly.        
-            /*
-            {
-                hasPassword: true/false,
-                requiresQuestionAnswer: true/false,
-                enableReset: true/false,
-                enablePasswordRetrieval: true/false,
-                minPasswordLength: 10
-            }
-            */
+  function ($scope, $routeParams) {
 
-            //set defaults if they are not available
-            if (!$scope.model.config || $scope.model.config.disableToggle === undefined) {
-                $scope.model.config.disableToggle = false;
-            }
-            if (!$scope.model.config || $scope.model.config.hasPassword === undefined) {
-                $scope.model.config.hasPassword = false;
-            }
-            if (!$scope.model.config || $scope.model.config.enablePasswordRetrieval === undefined) {
-                $scope.model.config.enablePasswordRetrieval = true;
-            }
-            if (!$scope.model.config || $scope.model.config.requiresQuestionAnswer === undefined) {
-                $scope.model.config.requiresQuestionAnswer = false;
-            }
-            if (!$scope.model.config || $scope.model.config.enableReset === undefined) {
-                $scope.model.config.enableReset = true;
-            }
-            if (!$scope.model.config || $scope.model.config.minPasswordLength === undefined) {
-                $scope.model.config.minPasswordLength = 0;
-            }
-            
-            //set the model defaults
-            if (!angular.isObject($scope.model.value)) {
-                //if it's not an object then just create a new one
-                $scope.model.value = {
-                    newPassword: null,
-                    oldPassword: null,
-                    reset: null,
-                    answer: null
-                };
-            }
-            else {
-                //just reset the values
+    $scope.isNew = $routeParams.create;
 
-                if (!isNew) {
-                    //if it is new, then leave the generated pass displayed
-                    $scope.model.value.newPassword = null;
-                    $scope.model.value.oldPassword = null;
-                }
-                $scope.model.value.reset = null;
-                $scope.model.value.answer = null;
-            }
+    function resetModel() {
+      //the model config will contain an object, if it does not we'll create defaults
+      //NOTE: We will not support doing the password regex on the client side because the regex on the server side
+      //based on the membership provider cannot always be ported to js from .net directly.        
+      /*
+      {
+          hasPassword: true/false,
+          requiresQuestionAnswer: true/false,
+          enableReset: true/false,
+          enablePasswordRetrieval: true/false,
+          minPasswordLength: 10
+      }
+      */
 
-            //the value to compare to match passwords
-            if (!isNew) {
-                $scope.model.confirm = "";
-            }
-            else if ($scope.model.value.newPassword && $scope.model.value.newPassword.length > 0) {
-                //if it is new and a new password has been set, then set the confirm password too
-                $scope.model.confirm = $scope.model.value.newPassword;
-            }
-            
+      //set defaults if they are not available
+      if (!$scope.model.config || $scope.model.config.disableToggle === undefined) {
+        $scope.model.config.disableToggle = false;
+      }
+      if (!$scope.model.config || $scope.model.config.hasPassword === undefined) {
+        $scope.model.config.hasPassword = false;
+      }
+      if (!$scope.model.config || $scope.model.config.enablePasswordRetrieval === undefined) {
+        $scope.model.config.enablePasswordRetrieval = true;
+      }
+      if (!$scope.model.config || $scope.model.config.requiresQuestionAnswer === undefined) {
+        $scope.model.config.requiresQuestionAnswer = false;
+      }
+      if (!$scope.model.config || $scope.model.config.enableReset === undefined) {
+        $scope.model.config.enableReset = true;
+      }
+      if (!$scope.model.config || $scope.model.config.minPasswordLength === undefined) {
+        $scope.model.config.minPasswordLength = 0;
+      }
+
+      //set the model defaults
+      if (!angular.isObject($scope.model.value)) {
+        //if it's not an object then just create a new one
+        $scope.model.value = {
+          newPassword: null,
+          oldPassword: null,
+          reset: null,
+          answer: null
+        };
+      }
+      else {
+        //just reset the values
+
+        if (!$scope.isNew) {
+          //if it is new, then leave the generated pass displayed
+          $scope.model.value.newPassword = null;
+          $scope.model.value.oldPassword = null;
         }
+        $scope.model.value.reset = null;
+        $scope.model.value.answer = null;
+      }
+    }
 
-        resetModel($routeParams.create);
+    resetModel();    
 
-        //if there is no password saved for this entity , it must be new so we do not allow toggling of the change password, it is always there
-        //with validators turned on.
-        $scope.changing = $scope.model.config.disableToggle === true || !$scope.model.config.hasPassword;
-
-        //we're not currently changing so set the model to null
-        if (!$scope.changing) {
-            $scope.model.value = null;
-        }
-
-        $scope.doChange = function() {
-            resetModel();
-            $scope.changing = true;
-            //if there was a previously generated password displaying, clear it
-            $scope.model.value.generatedPassword = null;
-        };
-
-        $scope.cancelChange = function() {
-            $scope.changing = false;
-            //set model to null
-            $scope.model.value = null;
-        };
-
-        var unsubscribe = [];
-
-        //listen for the saved event, when that occurs we'll 
-        //change to changing = false;
-        unsubscribe.push($scope.$on("formSubmitted", function() {
-            if ($scope.model.config.disableToggle === false) {
-                $scope.changing = false;
-            }
-        }));
-        unsubscribe.push($scope.$on("formSubmitting", function() {
-            //if there was a previously generated password displaying, clear it
-            if ($scope.changing && $scope.model.value) {
-                $scope.model.value.generatedPassword = null;
-            }
-            else if (!$scope.changing) {
-                //we are not changing, so the model needs to be null
-                $scope.model.value = null;
-            }
-        }));
-
-        //when the scope is destroyed we need to unsubscribe
-        $scope.$on('$destroy', function () {
-            for (var u in unsubscribe) {
-                unsubscribe[u]();
-            }
-        });
-
-        $scope.showReset = function() {
-            return $scope.model.config.hasPassword && $scope.model.config.enableReset;
-        };
-
-        $scope.showOldPass = function() {
-            return $scope.model.config.hasPassword &&
-                !$scope.model.config.allowManuallyChangingPassword &&
-                !$scope.model.config.enablePasswordRetrieval && !$scope.model.value.reset;
-        };
-
-        $scope.showNewPass = function () {
-            return !$scope.model.value.reset;
-        };
-
-        $scope.showConfirmPass = function() {
-            return !$scope.model.value.reset;
-        };
-        
-        $scope.showCancelBtn = function() {
-            return $scope.model.config.disableToggle !== true && $scope.model.config.hasPassword;
-        };
-
-    });
+  });
diff --git a/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.html b/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.html
index 78ae6afa6b..2a08fa29bc 100644
--- a/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.html
+++ b/src/Umbraco.Web.UI.Client/src/views/propertyeditors/changepassword/changepassword.html
@@ -1,62 +1,6 @@
-<div ng-controller="Umbraco.PropertyEditors.ChangePasswordController">
-    <div class="alert alert-success text-center" ng-hide="!model.value.generatedPassword">
-        <small>Password has been reset to:</small>
-        <br/>
-        <strong>{{model.value.generatedPassword}}</strong>
-    </div>
-    <div ng-switch="changing">
-        <div ng-switch-when="false">
-            <a href="" ng-click="doChange()" class="btn btn-small">
-                <localize key="general_changePassword">Change password</localize>
-            </a>         
-        </div>
-        <div ng-switch-when="true">
-        
-            <umb-control-group alias="resetPassword" label="@user_resetPassword" ng-show="$parent.showReset()">
-                <input type="checkbox" ng-model="$parent.model.value.reset" 
-                       id="Checkbox1" 
-                       name="resetPassword"
-                       val-server="resetPassword" no-dirty-check/>     
-                <span class="help-inline" val-msg-for="resetPassword" val-toggle-msg="valServer"></span>            
-            </umb-control-group>
-
-            <!-- we need to show the old pass field when the provider cannot retrieve the password -->
-            <umb-control-group alias="oldPassword" label="@user_oldPassword" ng-show="$parent.showOldPass()">            
-                <input type="password" name="oldPassword" ng-model="$parent.model.value.oldPassword"
-                       class="input-large umb-textstring textstring" 
-                       ng-required="$parent.showOldPass()"
-                       val-server="oldPassword" no-dirty-check
-                       autocomplete="off"/>    
-                <span class="help-inline" val-msg-for="oldPassword" val-toggle-msg="required">Required</span>
-                <span class="help-inline" val-msg-for="oldPassword" val-toggle-msg="valServer"></span>
-            </umb-control-group>
-
-            <umb-control-group alias="password" label="@user_newPassword" ng-show="$parent.showNewPass()">            
-                <input type="password" name="password" ng-model="$parent.model.value.newPassword"
-                       class="input-large umb-textstring textstring"
-                       ng-required="!$parent.model.value.reset"
-                       val-server="value"
-                       ng-minlength="{{$parent.model.config.minPasswordLength}}" no-dirty-check
-                       autocomplete="off" />    
-                <span class="help-inline" val-msg-for="password" val-toggle-msg="required">Required</span>    
-                <span class="help-inline" val-msg-for="password" val-toggle-msg="minlength">Minimum {{$parent.model.config.minPasswordLength}} characters</span>    
-                <span class="help-inline" val-msg-for="password" val-toggle-msg="valServer"></span>     
-            </umb-control-group>
-
-            <umb-control-group alias="confirmpassword" label="@user_confirmNewPassword" ng-show="$parent.showConfirmPass()">
-                <input type="password" name="confirmpassword" ng-model="$parent.model.confirm"
-                       class="input-large umb-textstring textstring"
-                       val-compare="password" no-dirty-check
-                       autocomplete="off"/>
-
-                <span class="help-inline" val-msg-for="confirmpassword" val-toggle-msg="valCompare">
-                    <localize key="user_passwordMismatch">The confirmed password doesn't match the new password!</localize>
-                </span>
-            </umb-control-group>
-
-            <a href="" ng-click="cancelChange()" ng-show="showCancelBtn()" class="btn btn-small">
-                <localize key="general_cancel">Cancel</localize>
-            </a> 
-        </div>      
-    </div>  
+<div>
+  <change-password is-new="isNew"
+                   password-values="model.value"
+                   config="model.config">
+  </change-password>
 </div>
diff --git a/src/Umbraco.Web.UI.Client/src/views/users/user.controller.js b/src/Umbraco.Web.UI.Client/src/views/users/user.controller.js
index 2d28ee8cd8..f241ae9244 100644
--- a/src/Umbraco.Web.UI.Client/src/views/users/user.controller.js
+++ b/src/Umbraco.Web.UI.Client/src/views/users/user.controller.js
@@ -1,13 +1,15 @@
 (function () {
     "use strict";
 
-    function UserEditController($scope, $timeout, $location, $routeParams, usersResource, contentEditingHelper, localizationService, notificationsService, mediaHelper, Upload, umbRequestHelper, usersHelper) {
+    function UserEditController($scope, $timeout, $location, $routeParams, usersResource, contentEditingHelper, localizationService, notificationsService, mediaHelper, Upload, umbRequestHelper, usersHelper, authResource) {
 
         var vm = this;
         var localizeSaving = localizationService.localize("general_saving");
 
         vm.page = {};
-        vm.user = {};
+        vm.user = {
+          changePassword: null
+        };
         vm.breadcrumbs = [];
         vm.avatarFile = {};
 
@@ -23,6 +25,13 @@
         vm.save = save;
         vm.maxFileSize = Umbraco.Sys.ServerVariables.umbracoSettings.maxFileSize + "KB"
         vm.acceptedFileTypes = mediaHelper.formatFileTypes(Umbraco.Sys.ServerVariables.umbracoSettings.imageFileTypes);
+        vm.toggleChangePassword = toggleChangePassword;
+
+        //create the initial model for change password
+        vm.changePasswordModel = {
+          config: {},
+          isChanging: false
+        };
 
         function init() {
 
@@ -36,6 +45,22 @@
                 vm.loading = false;
             });
 
+            //go get the config for the membership provider and add it to the model
+            authResource.getMembershipProviderConfig().then(function (data) {
+              vm.changePasswordModel.config = data;
+              //ensure the hasPassword config option is set to true (the user of course has a password already assigned)
+              //this will ensure the oldPassword is shown so they can change it
+              // disable reset password functionality beacuse it does not make sense inside the backoffice
+              vm.changePasswordModel.config.hasPassword = true;
+              vm.changePasswordModel.config.disableToggle = true;
+              vm.changePasswordModel.config.enableReset = false;
+            });
+        }
+
+        function toggleChangePassword() {
+          vm.changePasswordModel.isChanging = !vm.changePasswordModel.isChanging;
+          //reset it
+          vm.user.changePassword = null;
         }
 
         function save() {
@@ -56,6 +81,7 @@
 
                 vm.user = saved;
                 setUserDisplayState();
+                vm.changePasswordModel.isChanging = false;
                 vm.page.saveButtonState = "success";
 
             }, function (err) {
diff --git a/src/Umbraco.Web.UI.Client/src/views/users/user.html b/src/Umbraco.Web.UI.Client/src/views/users/user.html
index 517dde209d..4c9c377737 100644
--- a/src/Umbraco.Web.UI.Client/src/views/users/user.html
+++ b/src/Umbraco.Web.UI.Client/src/views/users/user.html
@@ -24,7 +24,8 @@
                             <div class="test-group">
                                 <div class="test-group-title">Meta</div>
                                 <div class="test-group-content block-form">
-                                    <umb-control-group label="Email" description="Orci varius natoque penatibus et magnis dis parturient montes">
+                                    
+                                  <umb-control-group label="Email" description="Orci varius natoque penatibus et magnis dis parturient montes">
                                         <input type="text"
                                             localize="placeholder" 
                                             placeholder="@placeholders_entername" 
@@ -32,6 +33,15 @@
                                             ng-model="vm.user.email"
                                             umb-auto-focus />
                                     </umb-control-group>
+                                  
+                                    <umb-control-group label="Username" description="Orci varius natoque penatibus et magnis dis parturient montes" ng-if="vm.user.email !== vm.user.username">
+                                      <input type="text"
+                                             localize="placeholder" 
+                                             placeholder="@placeholders_entername" 
+                                             class="input-block-level" 
+                                             ng-model="vm.user.username"
+                                             umb-auto-focus />
+                                    </umb-control-group>
 
                                     <umb-control-group label="Language" description="Orci varius natoque penatibus et magnis dis parturient montes">
                                         <select class="input-block-level" ng-model="vm.user.culture" ng-options="key as value for (key, value) in vm.user.availableCultures">
@@ -40,6 +50,42 @@
                                     </umb-control-group>
                                 </div>
                             </div>
+                          
+                            <div class="test-group">
+                              <div class="test-group-title">Password</div>
+                              <div class="test-group-content block-form">
+                                    
+                                <umb-button
+                                  type="button"
+                                  action="vm.toggleChangePassword()"
+                                  label="Change password"
+                                  label-key="general_changePassword"
+                                  state="changePasswordButtonState"                                  
+                                  ng-if="vm.changePasswordModel.isChanging === false">
+                                </umb-button>
+
+                                <ng-form
+                                  ng-if="vm.changePasswordModel.isChanging"
+                                  name="passwordForm"
+                                  class="block-form"                                  
+                                  val-form-manager>
+         
+                                  <change-password password-values="vm.user.changePassword"
+                                                   config="vm.changePasswordModel.config">
+                                  </change-password>
+
+                                  <umb-button
+                                    type="button"
+                                    action="vm.toggleChangePassword()"
+                                    label="Cancel"
+                                    label-key="general_cancel"
+                                    button-style="cancel">
+                                  </umb-button>
+
+                                </ng-form>
+                                
+                              </div>
+                            </div>
 
                             <div class="test-group">
                                 <div class="test-group-title">Permissions</div>
diff --git a/src/Umbraco.Web/Editors/CurrentUserController.cs b/src/Umbraco.Web/Editors/CurrentUserController.cs
index d7da1cd713..1781a00b3a 100644
--- a/src/Umbraco.Web/Editors/CurrentUserController.cs
+++ b/src/Umbraco.Web/Editors/CurrentUserController.cs
@@ -1,6 +1,4 @@
-using System;
-using System.Collections.Generic;
-using System.Linq;
+using System.Collections.Generic;
 using System.Net;
 using System.Text;
 using System.Threading.Tasks;
@@ -8,6 +6,7 @@ using System.Web.Http;
 using System.Web.Security;
 using AutoMapper;
 using Umbraco.Core.Configuration;
+using Umbraco.Core.Services;
 using Umbraco.Web.Models;
 using Umbraco.Web.Models.ContentEditing;
 using Umbraco.Web.Models.Mapping;
@@ -39,29 +38,16 @@ namespace Umbraco.Web.Editors
         /// </returns>
         public ModelWithNotifications<string> PostChangePassword(ChangingPasswordModel data)
         {
-            var userProvider = Core.Security.MembershipProviderExtensions.GetUsersMembershipProvider();
-
-            //TODO: WE need to support this! - requires UI updates, etc...
-            if (userProvider.RequiresQuestionAndAnswer)
-            {
-                throw new NotSupportedException("Currently the user editor does not support providers that have RequiresQuestionAndAnswer specified");
-            }
-
-            var passwordChangeResult = Members.ChangePassword(Security.CurrentUser.Username, data, userProvider);
+            var passwordChangeResult = PasswordChangeControllerHelper.PostChangePassword(Security.CurrentUser, data, ModelState, Members);
+            
             if (passwordChangeResult.Success)
             {
                 //even if we weren't resetting this, it is the correct value (null), otherwise if we were resetting then it will contain the new pword
                 var result = new ModelWithNotifications<string>(passwordChangeResult.Result.ResetPassword);
-                result.AddSuccessNotification(ui.Text("user", "password"), ui.Text("user", "passwordChanged"));
+                result.AddSuccessNotification(Services.TextService.Localize("user/password"), Services.TextService.Localize("user/passwordChanged"));
                 return result;
             }
 
-            //it wasn't successful, so add the change error to the model state, we've name the property alias _umb_password on the form
-            // so that is why it is being used here.
-            ModelState.AddPropertyError(
-                passwordChangeResult.Result.ChangeError,
-                string.Format("{0}password", Constants.PropertyEditors.InternalGenericPropertiesPrefix));
-
             throw new HttpResponseException(Request.CreateValidationErrorResponse(ModelState));
         }
 
diff --git a/src/Umbraco.Web/Editors/PasswordChangeControllerHelper.cs b/src/Umbraco.Web/Editors/PasswordChangeControllerHelper.cs
new file mode 100644
index 0000000000..d9602d4ecd
--- /dev/null
+++ b/src/Umbraco.Web/Editors/PasswordChangeControllerHelper.cs
@@ -0,0 +1,39 @@
+using System;
+using System.Linq;
+using System.Web.Http.ModelBinding;
+using Umbraco.Core;
+using Umbraco.Core.Models.Membership;
+using Umbraco.Web.Models;
+using Umbraco.Web.Security;
+
+namespace Umbraco.Web.Editors
+{
+    internal class PasswordChangeControllerHelper
+    {
+        
+        public static Attempt<PasswordChangedModel> PostChangePassword(
+            IUser currentUser,
+            ChangingPasswordModel data, 
+            ModelStateDictionary modelState, 
+            MembershipHelper membersHelper)
+        {
+            var userProvider = Core.Security.MembershipProviderExtensions.GetUsersMembershipProvider();
+            
+            if (userProvider.RequiresQuestionAndAnswer)
+            {
+                throw new NotSupportedException("Currently the user editor does not support providers that have RequiresQuestionAndAnswer specified");
+            }
+
+            var passwordChangeResult = membersHelper.ChangePassword(currentUser.Username, data, userProvider);
+            if (passwordChangeResult.Success == false)
+            {
+                //it wasn't successful, so add the change error to the model state
+                var fieldName = passwordChangeResult.Result.ChangeError.MemberNames.FirstOrDefault() ?? "password";
+                modelState.AddModelError(fieldName,
+                    passwordChangeResult.Result.ChangeError.ErrorMessage);
+            }
+
+            return passwordChangeResult;
+        }
+    }
+}
\ No newline at end of file
diff --git a/src/Umbraco.Web/Editors/UsersController.cs b/src/Umbraco.Web/Editors/UsersController.cs
index b5ed991722..6226400fd0 100644
--- a/src/Umbraco.Web/Editors/UsersController.cs
+++ b/src/Umbraco.Web/Editors/UsersController.cs
@@ -33,8 +33,6 @@ using Task = System.Threading.Tasks.Task;
 
 namespace Umbraco.Web.Editors
 {
-
-
     [PluginController("UmbracoApi")]
     [UmbracoApplicationAuthorize(Constants.Applications.Users)]
     public class UsersController : UmbracoAuthorizedJsonController
@@ -438,11 +436,24 @@ namespace Umbraco.Web.Editors
                 hasErrors = true;
             }
 
+            var resetPasswordValue = string.Empty;
+            if (userSave.ChangePassword != null)
+            {
+                var passwordChangeResult = PasswordChangeControllerHelper.PostChangePassword(Security.CurrentUser, userSave.ChangePassword, ModelState, Members);
+                if (passwordChangeResult.Success)
+                {
+                    //depending on how the provider is configured, the password may be reset so let's store that for later
+                    resetPasswordValue = passwordChangeResult.Result.ResetPassword;
+                }
+                else
+                {
+                    hasErrors = true;
+                }
+            }
+
             if (hasErrors)
                 throw new HttpResponseException(Request.CreateErrorResponse(HttpStatusCode.BadRequest, ModelState));
 
-            //TODO: More validation, password changing logic, persisting
-
             //merge the save data onto the user
             var user = Mapper.Map(userSave, found);
 
@@ -450,6 +461,10 @@ namespace Umbraco.Web.Editors
 
             var display = Mapper.Map<UserDisplay>(user);
 
+            //re-map the password reset value (if any)
+            if (resetPasswordValue.IsNullOrWhiteSpace() == false)
+                display.ResetPasswordValue = resetPasswordValue;
+
             display.AddSuccessNotification(Services.TextService.Localize("speechBubbles/operationSavedHeader"), Services.TextService.Localize("speechBubbles/editUserSaved"));
             return display;
         }
diff --git a/src/Umbraco.Web/ModelStateExtensions.cs b/src/Umbraco.Web/ModelStateExtensions.cs
index 5df479ce76..a36f3c89f6 100644
--- a/src/Umbraco.Web/ModelStateExtensions.cs
+++ b/src/Umbraco.Web/ModelStateExtensions.cs
@@ -61,7 +61,7 @@ namespace Umbraco.Web
         {
             //if there are no member names supplied then we assume that the validation message is for the overall property
             // not a sub field on the property editor
-            if (!result.MemberNames.Any())
+            if (result.MemberNames.Any() == false)
             {
                 //add a model state error for the entire property
                 modelState.AddModelError(string.Format("{0}.{1}", "_Properties", propertyAlias), result.ErrorMessage);
diff --git a/src/Umbraco.Web/Models/ContentEditing/UserDisplay.cs b/src/Umbraco.Web/Models/ContentEditing/UserDisplay.cs
index 1c3b19ab90..b747c7f348 100644
--- a/src/Umbraco.Web/Models/ContentEditing/UserDisplay.cs
+++ b/src/Umbraco.Web/Models/ContentEditing/UserDisplay.cs
@@ -35,10 +35,10 @@ namespace Umbraco.Web.Models.ContentEditing
         [DataMember(Name = "startMediaIds")]
         public IEnumerable<EntityBasic> StartMediaIds { get; set; }
 
-        ///// <summary>
-        ///// A list of sections the user is allowed to view based on their current groups assigned
-        ///// </summary>
-        //[DataMember(Name = "allowedSections")]
-        //public IEnumerable<string> AllowedSections { get; set; }        
+        /// <summary>
+        /// If the password is reset on save, this value will be populated
+        /// </summary>
+        [DataMember(Name = "resetPasswordValue")]
+        public string ResetPasswordValue { get; set; }
     }
 }
\ No newline at end of file
diff --git a/src/Umbraco.Web/Models/ContentEditing/UserSave.cs b/src/Umbraco.Web/Models/ContentEditing/UserSave.cs
index 4b408d324e..30f6bfc420 100644
--- a/src/Umbraco.Web/Models/ContentEditing/UserSave.cs
+++ b/src/Umbraco.Web/Models/ContentEditing/UserSave.cs
@@ -15,7 +15,8 @@ namespace Umbraco.Web.Models.ContentEditing
     [DataContract(Name = "user", Namespace = "")]
     public class UserSave : EntityBasic, IValidatableObject
     {
-        //TODO: There will be more information to save along with the structure for changing passwords
+        [DataMember(Name = "changePassword", IsRequired = true)]
+        public ChangingPasswordModel ChangePassword { get; set; }
 
         [DataMember(Name = "id", IsRequired = true)]
         [Required]
diff --git a/src/Umbraco.Web/Security/MembershipHelper.cs b/src/Umbraco.Web/Security/MembershipHelper.cs
index 605b5137d8..81487c41d9 100644
--- a/src/Umbraco.Web/Security/MembershipHelper.cs
+++ b/src/Umbraco.Web/Security/MembershipHelper.cs
@@ -719,7 +719,7 @@ namespace Umbraco.Web.Security
             if (passwordModel.OldPassword.IsNullOrWhiteSpace() && membershipProvider.EnablePasswordRetrieval == false)
             {
                 //if password retrieval is not enabled but there is no old password we cannot continue
-                return Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Password cannot be changed without the old password", new[] { "value" }) });
+                return Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Password cannot be changed without the old password", new[] { "oldPassword" }) });
             }
 
             if (passwordModel.OldPassword.IsNullOrWhiteSpace() == false)
@@ -730,7 +730,7 @@ namespace Umbraco.Web.Security
                 {
                     var result = membershipProvider.ChangePassword(username, passwordModel.OldPassword, passwordModel.NewPassword);
                     return result == false
-                        ? Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Could not change password, invalid username or password", new[] { "value" }) })
+                        ? Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Could not change password, invalid username or password", new[] { "oldPassword" }) })
                         : Attempt.Succeed(new PasswordChangedModel());
                 }
                 catch (Exception ex)
@@ -743,7 +743,7 @@ namespace Umbraco.Web.Security
             if (membershipProvider.EnablePasswordRetrieval == false)
             {
                 //we cannot continue if we cannot get the current password
-                return Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Password cannot be changed without the old password", new[] { "value" }) });
+                return Attempt.Fail(new PasswordChangedModel { ChangeError = new ValidationResult("Password cannot be changed without the old password", new[] { "oldPassword" }) });
             }
             if (membershipProvider.RequiresQuestionAndAnswer && passwordModel.Answer.IsNullOrWhiteSpace())
             {
diff --git a/src/Umbraco.Web/Umbraco.Web.csproj b/src/Umbraco.Web/Umbraco.Web.csproj
index 587e26f0fd..58df77c82d 100644
--- a/src/Umbraco.Web/Umbraco.Web.csproj
+++ b/src/Umbraco.Web/Umbraco.Web.csproj
@@ -331,6 +331,7 @@
     <Compile Include="Editors\EditorValidationResolver.cs" />
     <Compile Include="Editors\EditorValidator.cs" />
     <Compile Include="Editors\FromJsonPathAttribute.cs" />
+    <Compile Include="Editors\PasswordChangeControllerHelper.cs" />
     <Compile Include="Editors\TemplateController.cs" />
     <Compile Include="Editors\ParameterSwapControllerActionSelector.cs" />
     <Compile Include="Editors\CodeFileController.cs" />